$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0bfc72e4-cc7a-4def-ab21-9e672606b826.roa File: 0bfc72e4-cc7a-4def-ab21-9e672606b826.roa (raw, json) Hash identifier: DNGSghMbXx+sH3r6bhvRINHkLrg18OJYYmtvk9webpk= Subject key identifier: FC:25:BD:74:25:ED:F8:77:13:80:B6:F9:3F:2F:77:71:90:43:FF:FA Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 01650C4F6ADB3D0315726FBE212D4A0AA2B10AAB Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0bfc72e4-cc7a-4def-ab21-9e672606b826.roa Signing time: Mon 15 Jul 2024 00:00:00 +0000 ROA not before: Mon 15 Jul 2024 00:00:00 +0000 ROA not after: Mon 19 Aug 2024 23:59:59 +0000 asID: 14618 IP address blocks: 18.240.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 28 Jul 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:65:0c:4f:6a:db:3d:03:15:72:6f:be:21:2d:4a:0a:a2:b1:0a:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 15 00:00:00 2024 GMT Not After : Aug 19 23:59:59 2024 GMT Subject: serialNumber=d2882efa9fef4f6e6e9abb021576a401d66fc5011e212d70a294a877a9469127, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:a2:47:23:b1:84:a6:e5:47:75:58:18:5e:3c: 15:f8:e3:17:29:3a:06:53:17:ad:78:43:e2:1f:45: 7b:dc:94:1e:b9:5e:b7:93:fd:65:b2:d7:bb:10:5f: ce:33:ab:30:f1:e4:c7:ce:6f:a9:c3:c8:a1:79:66: e7:d8:e5:f5:e5:18:cb:ab:77:de:24:09:8b:ea:e6: 20:6f:0d:44:07:61:31:c4:9e:eb:74:f4:29:3a:75: 9b:44:99:2d:ae:e8:91:b6:fd:1e:d2:46:86:94:65: 79:f5:63:7c:6c:c6:81:1d:43:b6:20:cb:fa:57:88: 28:28:ec:9b:91:ff:9e:a1:bc:d2:a7:9c:a0:43:04: 66:f9:03:e6:bf:29:31:80:ee:86:6a:fd:6b:ab:79: c2:d6:3a:a9:f3:ff:4d:50:05:bc:46:fc:4b:de:4e: ef:76:7f:29:bb:0f:d5:c4:9b:ce:46:74:94:56:52: b6:3d:26:f3:fc:e6:f5:35:df:eb:43:20:b7:16:52: f8:b9:f5:ec:ac:b9:8e:f4:0f:51:a8:67:a3:a5:e0: 3e:0e:1b:08:03:eb:fe:6c:b6:58:5c:71:47:4e:9b: af:bc:68:d3:c3:ae:8d:f5:34:ea:22:6e:47:84:73: e0:b6:5b:74:22:a0:2a:f9:28:a9:9d:7c:8b:a1:b0: 40:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:25:BD:74:25:ED:F8:77:13:80:B6:F9:3F:2F:77:71:90:43:FF:FA X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0bfc72e4-cc7a-4def-ab21-9e672606b826.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.240.0.0/14 Signature Algorithm: sha256WithRSAEncryption 2c:7f:7f:7a:8e:53:3c:f6:d1:95:69:df:20:bd:86:54:29:59: 27:57:9f:5e:17:8a:84:54:f2:88:f5:29:60:58:19:a3:21:e4: d7:9d:59:6e:2b:97:f7:b8:19:5d:28:bf:bb:78:7a:1d:18:01: 53:51:86:6b:8a:ac:08:fe:80:b7:d5:2f:33:35:28:8b:8a:e8: 2c:d1:da:f0:24:e2:3f:62:73:55:d6:68:6d:cf:6f:13:76:8f: 5d:e0:b8:0e:eb:bb:e4:07:6c:55:66:b5:5d:6c:dc:6a:79:36: bb:95:14:f7:68:95:38:e3:87:b9:78:6d:b7:18:72:66:14:49: 83:f1:94:cb:2e:51:2f:90:c0:a1:e8:c6:52:fb:66:cf:de:fc: cf:ab:a9:8b:07:f1:dc:62:34:c1:b2:ef:f5:ca:46:9e:8c:39: bf:ef:93:18:55:b6:da:be:e8:59:5c:c1:a4:a8:31:68:c0:25: 23:fa:a6:b0:ae:15:00:80:b3:fd:be:a6:6a:95:a0:16:99:dd: b0:e3:5d:0c:05:7d:0d:f7:56:e0:22:54:73:e4:f0:dc:85:68: a4:70:f4:6a:cf:39:2c:e0:10:ba:21:a3:c0:e3:d8:a1:07:c5: 28:6a:71:54:fa:41:12:b0:b0:eb:54:04:cd:5b:6e:2a:b1:70: 88:98:db:f4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAWUMT2rbPQMVcm++IS1KCqKxCqswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNzE1MDAwMDAwWhcNMjQwODE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMjg4MmVmYTlmZWY0ZjZlNmU5YWJiMDIxNTc2YTQwMWQ2 NmZjNTAxMWUyMTJkNzBhMjk0YTg3N2E5NDY5MTI3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjokcjsYSm5Ud1WBhePBX44xcpOgZTF614Q+IfRXvclB65 XreT/WWy17sQX84zqzDx5MfOb6nDyKF5ZufY5fXlGMurd94kCYvq5iBvDUQHYTHE nut09Ck6dZtEmS2u6JG2/R7SRoaUZXn1Y3xsxoEdQ7Ygy/pXiCgo7JuR/56hvNKn nKBDBGb5A+a/KTGA7oZq/WurecLWOqnz/01QBbxG/EveTu92fym7D9XEm85GdJRW UrY9JvP85vU13+tDILcWUvi59eysuY70D1GoZ6Ol4D4OGwgD6/5stlhccUdOm6+8 aNPDro31NOoibkeEc+C2W3QioCr5KKmdfIuhsEBzAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU/CW9dCXt+HcTgLb5Py93cZBD//owHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzBiZmM3MmU0LWNjN2EtNGRlZi1hYjIxLTllNjcyNjA2YjgyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIS8DANBgkqhkiG9w0BAQsFAAOCAQEALH9/eo5TPPbRlWnfIL2GVClZJ1ef XheKhFTyiPUpYFgZoyHk151ZbiuX97gZXSi/u3h6HRgBU1GGa4qsCP6At9UvMzUo i4roLNHa8CTiP2JzVdZobc9vE3aPXeC4Duu75AdsVWa1XWzcank2u5UU92iVOOOH uXhttxhyZhRJg/GUyy5RL5DAoejGUvtmz978z6upiwfx3GI0wbLv9cpGnow5v++T GFW22r7oWVzBpKgxaMAlI/qmsK4VAICz/b6mapWgFpndsONdDAV9DfdW4CJUc+Tw 3IVopHD0as85LOAQuiGjwOPYoQfFKGpxVPpBErCw61QEzVtuKrFwiJjb9A== -----END CERTIFICATE-----Generated at Fri Jul 26 00:25:23 2024 by rpki-client on console-ams.rpki-client.org